LATEST POST
Courts Are Still Willing To Dismiss Data Breach Lawsuits for Lack of Standing
From the law firm of BakerHostetler: In data breach litigation, courts generally find plaintiffs have standing such that their complaints may proceed past the pleading stage when it is alleged that sensitive information was impacted and there is an allegation of dark web exposure, misuse or fraud. However, a few courts have recently dismissed proposed […]
TRICARE Contractor Resolves $11M False Claims Act Liability for Known Cybersecurity Violations
Tycko & Zavareei Whistleblower Practice Group writes: February 2025 saw an important False Claims Act settlement involving allegations of known cybersecurity failures by Health Net Federal Services Inc. (HNFS), a government contractor that provides TRICARE healthcare management services to active duty military members and their families. HNFS as well as its parent corporation Centene agreed […]
Judge Calls for Change Healthcare Data Breach Lawsuits in State and Federal Courts To Be Coordinated
About Lawsuits reports that all the state and federal lawsuits against Change Healthcare should be coordinated: The U.S. District Judge appointed to preside over all Change Healthcare data breach lawsuits brought throughout the federal court system has issued an order, outlining a plan to coordinate the pretrial proceedings in the federal multidistrict litigation (MDL) with claims pending […]
U.S. intel vets helped crypto firm soar, unaware of infamous hacker behind it
You may not always know who your partners are. The Washington Post reports: An innovative company lionized for devising ways to crack passwords to huge cryptocurrency accounts has fallen into disarray since it began emerging that the firm was secretly co-founded by a once-celebrated hacker publicly accused of repeated sexual assaults. The previously unreported role […]
Dual Russian And Israeli National Extradited To The United States For His Role In The LockBit Ransomware Conspiracy
The U.S. Department of Justice announced: A dual Russian and Israeli national was extradited to the United States on charges that he was a developer of the LockBit ransomware group, United States Attorney John Giordano announced. In August, Rostislav Panev, 51, was arrested in Israel pursuant to a U.S. provisional arrest request. Today, Panev was […]
China’s Volt Typhoon Hackers Dwelled in US Electric Grid for 300 Days
SecurityWeek reports that Dragos has published an interesting case study about an attack by the Chinese threat actors known as Volt Typhoon on the electric grid. The target was Littleton Electric Light and Water Departments (LELWD), a small public power utility in Massachusetts that serves Littleton and Boxborough. The utility had been in the process […]
Cybersecurity Advisory: Medusa Ransomware
From CISA.gov, a #StopRansomware advisory: Medusa is a ransomware-as-a-service (RaaS) variant first identified in June 2021. As of February 2025, Medusa developers and affiliates have impacted over 300 victims from a variety of critical infrastructure sectors with affected industries including medical, education, legal, insurance, technology, and manufacturing. The Medusa ransomware variant is unrelated to the MedusaLocker variant […]
“Script kiddie” hackers behind cyberattack on Musk’s X, security researcher says
Dark Storm, the big scary-sounding group that took down X (formerly Twitter) in a DDoS attack was just an Egyptian college kid? Cybernews reports: A French security researcher on Tuesday claims to have uncovered the identity of the Dark Storm hacker behind the hours-long DDoS cyberattack on Elon Musk’s X social media platform – and […]